Period
to 19 January 2020

The following table provides summary statistics for contract job vacancies with a requirement for PCI DSS skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited PCI DSS over the 6 months to 19 January 2020 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

Payment Card Industry Data Security Standard (PCI DSS)
UK
6 months to
19 Jan 2020
Same period 2019 Same period 2018
Rank 475 502 380
Rank change year-on-year +27 -122 +19
Contract jobs citing PCI DSS 279 402 628
As % of all contract IT jobs advertised in the UK 0.39% 0.41% 0.63%
As % of the Quality Assurance & Compliance category 3.82% 3.76% 4.82%
Number of daily rates quoted 166 265 377
UK median daily rate £500 £500 £488
Median daily rate % change year-on-year - +2.56% +2.63%
10th Percentile £325 £350 £313
90th Percentile £701 £703 £638
UK excluding London median daily rate £450 £475 £425
% change year-on-year -5.26% +11.76% -10.53%
Number of hourly rates quoted 3 0 1
UK median hourly rate £20.11 - £30.00
10th Percentile £19.05 - £27.50
90th Percentile £66.23 - £32.50
UK excluding London median hourly rate £20.11 - £30.00

PCI DSS is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Contract vacancies with a requirement for quality assurance or compliance skills 7,305 10,681 13,021
As % of all contract IT jobs advertised in the UK 10.19% 10.82% 12.99%
Number of daily rates quoted 4,540 6,691 8,541
UK median daily rate £450 £450 £440
Median daily rate % change year-on-year - +2.27% +3.53%
10th Percentile £220 £256 £258
90th Percentile £638 £630 £638
UK excluding London median daily rate £415 £425 £400
% change year-on-year -2.35% +6.25% -
Number of hourly rates quoted 320 361 354
UK median hourly rate £22.90 £20.25 £20.60
Median hourly rate % change year-on-year +13.11% -1.72% -14.17%
10th Percentile £12.50 £11.00 £11.25
90th Percentile £53.75 £47.50 £50.78
UK excluding London median hourly rate £24.37 £20.24 £22.42
% change year-on-year +20.43% -9.76% -10.31%

PCI DSS
Job Vacancy Trend

Job postings citing PCI DSS as a percentage of all IT jobs advertised.

Job vacancy trend for PCI DSS in the UK

PCI DSS
Contractor Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing PCI DSS.

Contractor daily rate trend for PCI DSS in the UK

PCI DSS
Contractor Daily Rate Histogram

The daily rate distribution of IT jobs citing PCI DSS over the 6 months to 19 January 2020.

Contractor daily rate histogram for PCI DSS in the UK

PCI DSS
Contractor Hourly Rate Trend

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing PCI DSS.

Contractor hourly rate trend for PCI DSS in the UK

PCI DSS
Contractor Hourly Rate Histogram

The hourly rate distribution of IT jobs citing PCI DSS over the 6 months to 19 January 2020.

Contractor hourly rate histogram for PCI DSS in the UK

PCI DSS
Top 13 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing PCI DSS within the UK over the 6 months to 19 January 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +26 243 £515 +2.99% 122
UK excluding London +25 174 £450 -5.26% 100
London +81 96 £575 +4.55% 30
South East +38 48 £450 -16.28% 25
North of England +38 38 £550 +15.79% 24
Yorkshire +42 24 £550 +22.22% 9
Scotland +40 24 £450 -25.00% 5
East of England +35 21 £400 -5.88% 14
South West +6 21 £380 -12.64% 6
Midlands +34 18 £544 +35.94% 23
West Midlands +24 18 £544 +35.94% 20
North West +11 14 £498 -7.44% 15
Wales +27 4 £508 -5.58% 3

For the 6 months to 19 January 2020, IT contractor jobs citing PCI DSS also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for PCI DSS.

1 134 (48.03%) ISO/IEC 27001
2 114 (40.86%) Information Security
3 84 (30.11%) CISSP
4 69 (24.73%) CISM
4 69 (24.73%) AWS
5 65 (23.30%) Linux
5 65 (23.30%) GDPR
6 61 (21.86%) Azure
6 61 (21.86%) SIEM
7 55 (19.71%) Finance
8 52 (18.64%) Firewall
9 49 (17.56%) Microsoft
9 49 (17.56%) NIST
10 46 (16.49%) Security Architecture
11 45 (16.13%) Agile Software Development
12 43 (15.41%) Windows
13 42 (15.05%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
14 41 (14.70%) Vulnerability Management
15 39 (13.98%) Sarbanes-Oxley
16 36 (12.90%) Cybersecurity
17 35 (12.54%) Public Sector
18 34 (12.19%) Data Protection
19 33 (11.83%) VPN
20 32 (11.47%) Unix
20 32 (11.47%) Web Services
20 32 (11.47%) ITIL
20 32 (11.47%) Stakeholder Management
21 31 (11.11%) CISA
21 31 (11.11%) Security Cleared
21 31 (11.11%) Problem-Solving

PCI DSS
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 12 (4.30%) Elasticsearch
2 10 (3.58%) Apache
3 9 (3.23%) IIS
4 6 (2.15%) MS Exchange
5 4 (1.43%) Apache Spark
6 3 (1.08%) Exchange Server 2010
6 3 (1.08%) OpenStack
7 2 (0.72%) JBoss
7 2 (0.72%) nginx
7 2 (0.72%) SharePoint
8 1 (0.36%) Blackberry Enterprise Server
8 1 (0.36%) Commerce Server
8 1 (0.36%) Confluence
8 1 (0.36%) Drupal
8 1 (0.36%) Tomcat
Applications
1 4 (1.43%) Microsoft Excel
2 2 (0.72%) Microsoft PowerPoint
3 1 (0.36%) Microsoft Office
3 1 (0.36%) MS Visio
Business Applications
1 3 (1.08%) Payment Gateway
Cloud Services
1 69 (24.73%) AWS
2 61 (21.86%) Azure
3 16 (5.73%) Office 365
4 14 (5.02%) SaaS
5 13 (4.66%) GCP
6 8 (2.87%) GitHub
6 8 (2.87%) IaaS
6 8 (2.87%) PaaS
7 6 (2.15%) Azure ExpressRoute
7 6 (2.15%) Cloud Computing
8 4 (1.43%) OpenShift
9 3 (1.08%) Serverless
10 2 (0.72%) Akamai
10 2 (0.72%) Azure Active Directory
10 2 (0.72%) Virtual Private Cloud
11 1 (0.36%) Firebase
11 1 (0.36%) Yammer
Communications & Networking
1 52 (18.64%) Firewall
2 33 (11.83%) VPN
3 27 (9.68%) DNS
4 26 (9.32%) Network Security
5 18 (6.45%) Internet
5 18 (6.45%) Intrusion Detection
5 18 (6.45%) TCP/IP
6 10 (3.58%) VLAN
7 9 (3.23%) WAN
8 8 (2.87%) HTTP
8 8 (2.87%) LAN
8 8 (2.87%) SMTP
9 6 (2.15%) Cisco Firepower
9 6 (2.15%) SSL
10 5 (1.79%) DHCP
10 5 (1.79%) Kerberos
10 5 (1.79%) SAN
10 5 (1.79%) VoIP
10 5 (1.79%) Wireless
11 4 (1.43%) IPsec
Database & Business Intelligence
1 12 (4.30%) Big Data
2 10 (3.58%) MongoDB
3 8 (2.87%) PostgreSQL
4 7 (2.51%) MySQL
5 4 (1.43%) Relational Database
5 4 (1.43%) SQL Server
6 2 (0.72%) Data Lake
6 2 (0.72%) DB2
6 2 (0.72%) Hadoop
6 2 (0.72%) MS Access
6 2 (0.72%) Redis
7 1 (0.36%) Apache Cassandra
7 1 (0.36%) SQL Server Analysis Services
7 1 (0.36%) SQL Server Reporting Services
Development Applications
1 11 (3.94%) Jenkins
2 4 (1.43%) git-flow
3 3 (1.08%) JIRA
4 2 (0.72%) AppScan
4 2 (0.72%) Bitbucket
4 2 (0.72%) Git (software)
4 2 (0.72%) GitLab
5 1 (0.36%) Postman
5 1 (0.36%) SoapUI
General
1 55 (19.71%) Finance
2 35 (12.54%) Public Sector
3 24 (8.60%) Retail
4 12 (4.30%) Telecoms
5 6 (2.15%) Banking
5 6 (2.15%) Legal
5 6 (2.15%) Marketing
6 4 (1.43%) Manufacturing
7 3 (1.08%) Advertising
7 3 (1.08%) Electronics
7 3 (1.08%) French Language
7 3 (1.08%) German Language
7 3 (1.08%) Law
7 3 (1.08%) Spanish Language
8 1 (0.36%) Automotive
8 1 (0.36%) Billing
8 1 (0.36%) Financial Institution
8 1 (0.36%) Russian Language
Job Titles
1 55 (19.71%) Architect
2 43 (15.41%) Analyst
3 42 (15.05%) Security Architect
4 37 (13.26%) Security Engineer
5 35 (12.54%) Consultant
6 31 (11.11%) Security Consultant
7 26 (9.32%) Security Analyst
8 16 (5.73%) Developer
9 13 (4.66%) Cloud Engineer
10 12 (4.30%) Administrator
11 11 (3.94%) Business Analyst
12 10 (3.58%) Information Security Architect
12 10 (3.58%) IT Analyst
12 10 (3.58%) IT Security Analyst
13 9 (3.23%) Cloud Architect
13 9 (3.23%) Information Security Consultant
13 9 (3.23%) Security Manager
14 8 (2.87%) Cybersecurity Architect
14 8 (2.87%) Information Analyst
14 8 (2.87%) Information Security Analyst
Libraries, Frameworks & Software Standards
1 32 (11.47%) Web Services
2 16 (5.73%) JSON
3 10 (3.58%) Node.js
4 8 (2.87%) Ruby on Rails
5 7 (2.51%) Express
6 5 (1.79%) Middleware
6 5 (1.79%) SAML
7 4 (1.43%) Elastic Stack
7 4 (1.43%) J2EE
7 4 (1.43%) Kafka
7 4 (1.43%) Spring
7 4 (1.43%) XML
8 2 (0.72%) OAuth
8 2 (0.72%) OAuth2
8 2 (0.72%) OpenID
8 2 (0.72%) REST
8 2 (0.72%) RESTful
8 2 (0.72%) SOAP
8 2 (0.72%) YAML
9 1 (0.36%) Laravel
Miscellaneous
1 28 (10.04%) Analytical Skills
2 24 (8.60%) PKI
3 23 (8.24%) Management Information System
4 17 (6.09%) Public Cloud
5 16 (5.73%) Cyberthreat
6 12 (4.30%) Enterprise Cloud
7 10 (3.58%) Data Centre
8 9 (3.23%) Greenfield Project
8 9 (3.23%) Mobile App
9 8 (2.87%) SCADA
10 5 (1.79%) Data Protection Act
10 5 (1.79%) Security Operations Centre
11 4 (1.43%) Mobile Payment
12 3 (1.08%) Chip and PIN
12 3 (1.08%) Hybrid Cloud
12 3 (1.08%) iSeries
12 3 (1.08%) Linux Command Line
12 3 (1.08%) N-Tier
13 2 (0.72%) EPoS
13 2 (0.72%) PMI
Operating Systems
1 65 (23.30%) Linux
2 43 (15.41%) Windows
3 32 (11.47%) Unix
4 13 (4.66%) Red Hat Enterprise Linux
5 10 (3.58%) Mac OS
6 9 (3.23%) Windows Server
7 6 (2.15%) Windows Server 2008
7 6 (2.15%) Windows Server 2012
8 4 (1.43%) Debian
8 4 (1.43%) Mac OS X
8 4 (1.43%) Windows 10
9 3 (1.08%) Android
9 3 (1.08%) CentOS
9 3 (1.08%) OS/400
9 3 (1.08%) Windows 7
10 2 (0.72%) AIX
10 2 (0.72%) Apple iOS
10 2 (0.72%) Solaris
10 2 (0.72%) Ubuntu
10 2 (0.72%) Windows XP
Processes & Methodologies
1 114 (40.86%) Information Security
2 61 (21.86%) SIEM
3 46 (16.49%) Security Architecture
4 45 (16.13%) Agile Software Development
5 41 (14.70%) Vulnerability Management
6 36 (12.90%) Cybersecurity
7 34 (12.19%) Data Protection
8 32 (11.47%) ITIL
8 32 (11.47%) Stakeholder Management
9 31 (11.11%) Problem-Solving
9 31 (11.11%) Security Operations
10 29 (10.39%) DevOps
11 25 (8.96%) Threat Management
12 24 (8.60%) OWASP
13 23 (8.24%) Vulnerability Scanning
14 22 (7.89%) Risk Management
14 22 (7.89%) Security Management
15 21 (7.53%) Threat Intelligence
16 20 (7.17%) Threat Modelling
17 19 (6.81%) Penetration Testing
Programming Languages
1 30 (10.75%) Python
2 24 (8.60%) Java
3 22 (7.89%) Ruby
4 15 (5.38%) Perl
5 14 (5.02%) Bash Shell
6 9 (3.23%) Go
6 9 (3.23%) PowerShell
7 5 (1.79%) PHP
7 5 (1.79%) SQL
8 3 (1.08%) JavaScript
9 2 (0.72%) C
10 1 (0.36%) C#
10 1 (0.36%) C++
10 1 (0.36%) Kotlin
10 1 (0.36%) Shell Script
Qualifications
1 84 (30.11%) CISSP
2 69 (24.73%) CISM
3 31 (11.11%) CISA
3 31 (11.11%) Security Cleared
4 21 (7.53%) Degree
5 17 (6.09%) Cisco Certification
6 14 (5.02%) AWS Certification
6 14 (5.02%) SC Cleared
7 12 (4.30%) SANS
8 11 (3.94%) CEH
9 10 (3.58%) (ISC)2 CCSP
9 10 (3.58%) CompTIA Security+
10 9 (3.23%) CCSP
11 8 (2.87%) CISMP
11 8 (2.87%) ISO 27001 Lead Implementer
11 8 (2.87%) ISSMP
12 6 (2.15%) CGEIT
12 6 (2.15%) Computer Science Degree
12 6 (2.15%) CRISC
12 6 (2.15%) IISP
Quality Assurance & Compliance
1 134 (48.03%) ISO/IEC 27001
2 65 (23.30%) GDPR
3 49 (17.56%) NIST
4 42 (15.05%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 39 (13.98%) Sarbanes-Oxley
6 26 (9.32%) COBIT
7 14 (5.02%) Cyber Essentials
7 14 (5.02%) HIPAA
8 5 (1.79%) QA
8 5 (1.79%) SLA
9 4 (1.43%) NCSC
10 3 (1.08%) ISAE 3402
10 3 (1.08%) ISO 9001
10 3 (1.08%) NIST 800
11 2 (0.72%) Cyber Essentials PLUS
11 2 (0.72%) GLBA
12 1 (0.36%) Disclosure Scotland
12 1 (0.36%) HMG Security Policy Framework
12 1 (0.36%) PMO
12 1 (0.36%) PSD2
System Software
1 30 (10.75%) Docker
2 28 (10.04%) Active Directory
3 15 (5.38%) VMware Infrastructure
4 3 (1.08%) Virtual Machines
4 3 (1.08%) vSphere
5 2 (0.72%) Citrix Hypervisor
5 2 (0.72%) Hyper-V
6 1 (0.36%) Microsoft App-V
6 1 (0.36%) NFS
6 1 (0.36%) VMware NSX
6 1 (0.36%) XenApp
Systems Management
1 13 (4.66%) CASB
1 13 (4.66%) Puppet
2 12 (4.30%) Opscode Chef
2 12 (4.30%) Suricata
3 9 (3.23%) Kubernetes
4 6 (2.15%) Nessus
5 5 (1.79%) SCCM
6 4 (1.43%) Ansible
6 4 (1.43%) Computer Emergency Response Teams
6 4 (1.43%) HP Fortify
6 4 (1.43%) Kibana
6 4 (1.43%) logstash
7 3 (1.08%) QRadar
7 3 (1.08%) SCOrch
8 2 (0.72%) FortiGate
8 2 (0.72%) Oracle Identity Management
8 2 (0.72%) Single Sign-On
8 2 (0.72%) Terraform
8 2 (0.72%) WebInspect
8 2 (0.72%) ZENworks
Vendors
1 49 (17.56%) Microsoft
2 24 (8.60%) Cisco
3 22 (7.89%) VMware
4 20 (7.17%) Qualys
4 20 (7.17%) Splunk
5 12 (4.30%) Oracle
6 11 (3.94%) Meraki
7 10 (3.58%) Imperva
8 9 (3.23%) Google
9 8 (2.87%) Red Hat
10 7 (2.51%) Palo Alto
11 6 (2.15%) CheckPoint
11 6 (2.15%) F5
11 6 (2.15%) Forcepoint
11 6 (2.15%) Incapsula
11 6 (2.15%) McAfee
12 5 (1.79%) Citrix
13 4 (1.43%) Cloudera
14 3 (1.08%) Ingenico
14 3 (1.08%) Symantec